Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A non-transitory machine-readable storage medium comprising instructions, that when executed, cause a processing resource to: transmit a frame to a computing device, wherein the frame comprises an identifier of a pre-usage agreement for a network; receive a request for the pre-usage agreement from the computing device; in response to receiving the request for the pre-usage agreement, transmit the pre-usage agreement to the computing device; receive, from the computing device, a registration request comprising a calculated representation of the pre-usage agreement indicating an acceptance of the pre-usage agreement by a user associated with the computing device; validate the registration request; and transmit a registration response to the computing device.
This invention relates to network access control systems, specifically methods for managing pre-usage agreements between users and network providers. The problem addressed is ensuring secure and verifiable acceptance of network usage terms before granting access. The system involves a machine-readable storage medium containing instructions for a processing resource to facilitate this process. The system transmits a frame to a computing device, where the frame includes an identifier for a pre-usage agreement governing network access. Upon receiving a request for the agreement from the computing device, the system sends the full agreement. The computing device then returns a registration request containing a calculated representation (e.g., a hash or digital signature) of the agreement, indicating user acceptance. The system validates this request and, if successful, transmits a registration response to the computing device, confirming access. This ensures that users explicitly acknowledge the terms before network access is granted, providing legal and operational compliance. The system may also include additional steps such as authenticating the computing device or user before processing the registration request. The invention improves security and accountability in network access management by enforcing pre-usage agreement validation before allowing connectivity.
2. The non-transitory machine-readable storage medium of claim 1 , wherein the identifier is stored in a tag-length-value (TLV).
A system and method for managing data in a machine-readable storage medium involves storing an identifier in a tag-length-value (TLV) format. The identifier is used to associate metadata with a data object, enabling efficient retrieval and processing. The TLV structure includes a tag field to specify the type of identifier, a length field to indicate the size of the identifier, and a value field containing the identifier itself. This approach allows for flexible and scalable storage of identifiers, supporting various data types and formats. The system may also include mechanisms for validating the identifier, ensuring data integrity and consistency. The identifier can be used to link the data object to additional information, such as ownership details, access permissions, or processing instructions. By storing the identifier in a TLV format, the system ensures compatibility with different storage systems and applications, facilitating interoperability. The method may further include steps for encoding and decoding the identifier, optimizing storage efficiency and retrieval speed. This solution addresses the challenge of managing identifiers in a structured and standardized way, improving data organization and accessibility in machine-readable storage environments.
3. The non-transitory machine-readable storage medium of claim 1 , wherein the frame comprises an indicator of a pre-usage requirement.
A system and method for managing digital content distribution involves a non-transitory machine-readable storage medium storing instructions that, when executed, perform operations related to frame-based content delivery. The system addresses the problem of efficiently distributing and managing digital content while ensuring compliance with pre-usage requirements, such as licensing or authentication checks. The storage medium includes instructions for processing a frame, where the frame contains an indicator of a pre-usage requirement. This indicator specifies conditions that must be met before the content can be accessed or used, such as verifying user permissions, validating licenses, or confirming system compatibility. The system dynamically checks these requirements before allowing content playback or execution, ensuring that content is only used in accordance with predefined rules. This approach enhances security, compliance, and user experience by preventing unauthorized access and ensuring that content is used as intended. The solution is particularly useful in digital media distribution, software licensing, and secure content delivery systems.
4. The non-transitory machine-readable storage medium of claim 3 , wherein the indicator is stored in a TLV.
A system and method for encoding and transmitting data in a structured format, particularly for use in communication protocols or data storage systems. The invention addresses the challenge of efficiently organizing and transmitting metadata or control information alongside payload data, ensuring compatibility with various systems while maintaining flexibility. The solution involves encoding an indicator, which may represent a status, command, or configuration parameter, into a Type-Length-Value (TLV) structure. The TLV format allows the indicator to be embedded within a larger data packet or message, where the "Type" field identifies the nature of the indicator, the "Length" field specifies its size, and the "Value" field contains the actual data. This approach enables systems to parse and process the indicator dynamically, supporting interoperability across different devices and protocols. The indicator may be used to signal events, trigger actions, or convey configuration settings, enhancing the functionality of communication systems, network protocols, or data storage mechanisms. The use of a TLV structure ensures that the indicator is self-describing, reducing the need for external documentation or predefined schemas. This method is particularly useful in environments where data must be transmitted or stored in a standardized yet flexible manner, such as in IoT devices, telecommunication networks, or distributed computing systems.
5. The non-transitory machine-readable storage medium of claim 1 , wherein the identifier is a hash value.
A system and method for securely identifying and managing data objects in a distributed computing environment. The technology addresses the challenge of ensuring data integrity and authenticity in decentralized systems where data objects may be replicated or modified across multiple nodes. The solution involves generating a unique identifier for each data object, which is derived from the object's content to ensure that any modification to the data will result in a different identifier. This identifier is then used to track and verify the data object's integrity throughout its lifecycle. The identifier can be a hash value, which is a cryptographic representation of the data object's content. By using a hash value as the identifier, the system ensures that even minor changes to the data will produce a significantly different hash, making it easy to detect tampering or corruption. The system may also include mechanisms for storing and retrieving these identifiers in a distributed ledger or database, allowing for efficient verification of data integrity across multiple nodes. This approach is particularly useful in applications such as blockchain, distributed storage systems, and secure data sharing platforms.
6. The non-transitory machine-readable storage medium of claim 1 , wherein the request for the pre-usage agreement is an Access Network Query Protocol (ANQP) element in a Generic Advertisement Service (GAS) frame.
This invention relates to wireless communication systems, specifically improving the handling of pre-usage agreements in network access protocols. The problem addressed is the inefficiency and complexity in negotiating pre-usage agreements between a wireless device and a network before establishing a connection. Current methods often require multiple exchanges, increasing latency and resource consumption. The invention provides a solution by embedding a request for a pre-usage agreement within an Access Network Query Protocol (ANQP) element in a Generic Advertisement Service (GAS) frame. This allows the request to be transmitted during the initial discovery phase of network access, reducing the need for additional signaling. The GAS frame is a standardized mechanism in wireless networks for querying network information, and ANQP is a protocol used to exchange network-specific details. By integrating the pre-usage agreement request into this existing framework, the invention streamlines the negotiation process, minimizing delays and conserving bandwidth. The solution is particularly useful in environments where quick and efficient network access is critical, such as in IoT deployments or high-density wireless networks. The embedded request ensures that the pre-usage agreement is handled as part of the standard discovery procedure, avoiding the need for separate, post-discovery negotiations. This approach enhances user experience by reducing connection setup time and improves network efficiency by optimizing resource usage.
7. The non-transitory machine-readable storage medium of claim 1 , wherein the calculated representation is a hash value calculated by the computing device.
A system and method for generating and verifying data representations, particularly for ensuring data integrity and authenticity. The invention addresses the need for reliable techniques to detect unauthorized modifications or tampering in digital data, which is critical in applications such as secure communications, digital signatures, and data storage. The system involves a computing device that processes input data to produce a calculated representation, which serves as a unique identifier or fingerprint for the data. This representation is then used to verify the data's integrity by comparing it to a reference value. The invention specifically discloses that the calculated representation is a hash value, which is a fixed-size numerical value derived from the input data using a cryptographic hash function. Hash values are highly sensitive to changes in the input data, making them effective for detecting even minor alterations. The computing device performs the hash calculation, ensuring that the process is computationally efficient and secure. The system may also include additional features, such as generating multiple hash values for different data segments or using the hash values in conjunction with encryption techniques to enhance security. The invention is applicable in various domains, including cybersecurity, blockchain technology, and digital forensics, where data integrity and authentication are paramount.
8. The non-transitory machine-readable storage medium of claim 1 , wherein the instructions to validate the registration request comprises instructions, that when executed, cause the processing resource to compare the identifier to the calculated representation.
A system and method for validating registration requests in a digital authentication framework. The invention addresses the problem of ensuring secure and accurate user registration by verifying the integrity of registration data before processing it. The system generates a calculated representation of a user-provided identifier, such as a username or email, using a cryptographic or hash function. During registration, the system compares the user-provided identifier to this calculated representation to detect discrepancies, such as typos or malicious alterations. If the comparison fails, the registration request is rejected to prevent unauthorized access or data corruption. The validation process may also include additional checks, such as verifying the format or syntax of the identifier to ensure compliance with system requirements. This approach enhances security by preventing invalid or fraudulent registrations while maintaining efficiency by automating the validation process. The system is particularly useful in online platforms, financial services, and other applications where secure user authentication is critical. The invention ensures that only properly formatted and verified identifiers are accepted, reducing the risk of account takeover or data breaches.
9. The non-transitory machine-readable storage medium of claim 1 , wherein the registration request comprises a time value.
A system and method for managing device registration in a network environment addresses the challenge of securely and efficiently registering devices while preventing unauthorized access. The invention involves a non-transitory machine-readable storage medium containing instructions that, when executed, perform a registration process. The registration request includes a time value, which is used to validate the request's timeliness and authenticity. The system verifies the time value against a predefined threshold to ensure the request is recent and within an acceptable time window, mitigating replay attacks. The registration process may also involve generating a cryptographic key pair, where the private key is securely stored on the device and the public key is transmitted to a registration server. The server authenticates the device using the public key and the time value, establishing a secure communication channel. The system further includes mechanisms for revoking or updating device registrations, ensuring ongoing security. The time value in the registration request enhances security by preventing the reuse of outdated or compromised requests, thereby improving the overall integrity of the registration process. This approach is particularly useful in IoT and cloud-based environments where secure device onboarding is critical.
10. The non-transitory machine-readable storage medium of claim 9 , wherein the instructions to validate the registration request comprises instructions, that when executed, cause the processing resource to compare the time value to an agreement creation date.
A system and method for validating registration requests in a digital agreement process. The technology addresses the problem of ensuring the authenticity and timeliness of registration requests in distributed systems, where unauthorized or outdated requests could lead to security vulnerabilities or operational inefficiencies. The invention involves a non-transitory machine-readable storage medium containing instructions that, when executed by a processing resource, perform a validation process for a registration request. The validation includes comparing a time value associated with the request to an agreement creation date to determine if the request is within an acceptable timeframe. This ensures that only valid, timely requests are processed, preventing unauthorized or outdated registrations. The system may also include additional validation steps, such as verifying the request against predefined criteria or checking for digital signatures to further enhance security. The solution is particularly useful in environments where secure and timely registration is critical, such as financial transactions, access control systems, or distributed ledger technologies. By enforcing time-based validation, the system improves security and reliability in digital agreement processes.
11. The non-transitory machine-readable storage medium of claim 9 , comprising instructions to transmit the registration request to an authentication, authorization, and accountability (AAA) computing device.
A system and method for secure device registration in a networked environment involves a non-transitory machine-readable storage medium containing instructions for managing device authentication and authorization. The system addresses the challenge of securely registering devices in a network while ensuring proper authentication, authorization, and accountability (AAA) procedures are followed. The storage medium includes instructions to generate a registration request containing device identification and authentication credentials. This request is then transmitted to an AAA computing device, which verifies the device's identity and determines appropriate access permissions. The AAA computing device may also enforce additional security policies, such as multi-factor authentication or device compliance checks, before granting access. The system ensures that only authorized devices can register and operate within the network, reducing the risk of unauthorized access or malicious activity. The instructions further enable the storage medium to process responses from the AAA device, such as approval or rejection of the registration request, and to handle subsequent communication based on the authorization status. This approach enhances network security by centralizing authentication and authorization processes, ensuring consistent enforcement of security policies across all registered devices.
12. A computing device comprising: a first communication engine to receive a frame from an access device; wherein the frame comprises a unique identifier of a pre-usage agreement for a network; and wherein the frame is received before the computing device registers with the access device; an agreement engine to present the network and an agreement requirement to a user and to receive a selection of the network from the user; a second communication engine to, in response to receiving the selection of the network, transmit a request for the pre-usage agreement to the access device and receive the pre-usage agreement from the access device; an acceptance engine to present the pre-usage agreement to the user and receive an acceptance indicator from the user; a calculation engine to, in response to receiving the acceptance indicator, determine a calculated representation of the pre-usage agreement; a memory to store the calculated representation; and wherein the first communication engine is to transmit a registration request comprising the calculated representation to the access device.
This invention relates to network access control systems, specifically for managing pre-usage agreements between computing devices and network access devices. The problem addressed is the need for a secure and efficient way to handle network access agreements before a device registers with the network, ensuring compliance with terms and conditions while minimizing disruptions to the user experience. The system includes a computing device with multiple communication engines, an agreement engine, an acceptance engine, a calculation engine, and memory. The first communication engine receives a frame from an access device containing a unique identifier for a pre-usage agreement before the computing device registers with the network. The agreement engine presents available networks and their agreement requirements to the user, allowing them to select a network. The second communication engine then transmits a request for the pre-usage agreement to the access device, retrieves the agreement, and presents it to the user for acceptance. Upon acceptance, the calculation engine generates a calculated representation of the agreement, which is stored in memory. Finally, the first communication engine transmits a registration request containing this calculated representation to the access device, completing the secure registration process. This approach ensures that network access agreements are properly reviewed and accepted before registration, enhancing security and compliance.
13. The computing device of claim 12 , wherein the calculated representation is stored in a tag-length-value (TLV).
A computing device processes data to generate a calculated representation, which is stored in a tag-length-value (TLV) format. The device includes a processor and memory storing instructions that, when executed, cause the processor to receive input data, apply a transformation function to the input data to produce the calculated representation, and store the representation in a TLV structure. The TLV structure includes a tag field identifying the type of data, a length field indicating the size of the value, and a value field containing the calculated representation. The transformation function may involve mathematical operations, data compression, or encryption to derive the representation from the input data. The TLV format ensures structured storage and efficient retrieval of the calculated representation, enabling compatibility with systems that rely on standardized data encoding. This approach is useful in applications requiring secure, compact, or interoperable data storage, such as network protocols, database systems, or embedded devices. The device may further include additional processing steps, such as validating the input data or encrypting the TLV structure before storage. The use of TLV encoding allows for flexible and scalable data handling, accommodating varying data types and sizes while maintaining a consistent storage format.
14. The computing device of claim 12 , wherein the registration request comprises a time value representing a date of the acceptance indicator.
A system for managing digital content access includes a computing device that processes registration requests for content items. The device verifies the authenticity of a registration request by checking a digital signature associated with the request. If the signature is valid, the device generates an acceptance indicator confirming the registration. The acceptance indicator includes metadata such as a unique identifier for the content item and a timestamp indicating when the registration was accepted. The system ensures that only authorized users can register content, preventing unauthorized access or modifications. The timestamp helps track the registration timeline, enabling audits and compliance checks. The device may also store the acceptance indicator in a secure database for future reference. This system is particularly useful in digital rights management, where tracking content access and ensuring proper authorization are critical. The inclusion of a timestamp in the registration request allows for precise tracking of when a content item was registered, supporting legal and operational requirements. The system enhances security by validating digital signatures and maintaining an immutable record of accepted registrations.
15. The computing device of claim 12 , wherein the memory is to store a prior calculated representation associated with the network; and wherein the calculation engine is to compare the prior calculated representation with the unique identifier.
This invention relates to computing devices used in network analysis, specifically for identifying and comparing network representations. The problem addressed is the need for efficient and accurate network identification, particularly in scenarios where networks may be dynamically reconfigured or where multiple networks need to be distinguished. The computing device includes a memory and a calculation engine. The memory stores a prior calculated representation of a network, which is a unique mathematical or data-based characterization of the network's structure or behavior. The calculation engine generates a unique identifier for the network by analyzing its current state, such as its topology, connectivity patterns, or other distinguishing features. The engine then compares this unique identifier with the prior calculated representation stored in memory. This comparison allows the device to determine whether the network has changed, whether it matches a known network, or whether it is a new or previously unrecognized network. The prior calculated representation may be derived from historical data, baseline configurations, or previous analysis results. The comparison process ensures that the network's current state can be accurately mapped to its past representations, enabling tasks such as network monitoring, anomaly detection, or configuration validation. This approach is particularly useful in environments where networks are frequently modified or where multiple similar networks must be distinguished.
16. A method comprising: transmitting, by a processing resource of an access device, a frame to a computing device over a network, wherein the frame comprises an identifier of a pre-usage agreement in a tag-length-value (TLV); receiving, by the processing resource, a request from the computing device for the pre-usage agreement; in response to receiving the request for the pre-usage agreement, transmitting, by the processing resource, the pre-usage agreement to the computing device; wherein the transmission of the pre-usage agreement is before the computing device registers with the access device; receiving, by the processing resource, a registration request comprising a calculated representation of the pre-usage agreement; validating, by the processing resource, the registration request; and transmitting, by the processing resource, a registration response to the computing device.
This invention relates to network-based authentication and registration systems, specifically improving the process of device registration by exchanging pre-usage agreements before formal registration occurs. The problem addressed is the inefficiency and potential security risks of traditional registration methods where devices must complete registration before accessing necessary agreements or policies. The method involves an access device transmitting a network frame to a computing device, where the frame includes an identifier for a pre-usage agreement encoded in a tag-length-value (TLV) format. Upon receiving this frame, the computing device requests the full pre-usage agreement, which the access device provides before the computing device registers. After receiving the agreement, the computing device generates a calculated representation (e.g., a hash or signature) of the agreement and includes it in a registration request sent to the access device. The access device validates this request by verifying the calculated representation matches the original agreement. If valid, the access device transmits a registration response, completing the process. This approach ensures that devices can securely access and acknowledge agreements before registration, streamlining the authentication workflow and reducing potential security gaps.
17. The method of claim 16 , wherein the validating of the registration request comprises comparing, by the processing resource, the unique identifier to the calculated representation.
A system and method for validating registration requests in a digital authentication framework addresses the problem of ensuring secure and accurate user registration by verifying the integrity of submitted data. The method involves receiving a registration request containing a unique identifier and a calculated representation derived from the request data. The system processes the request by extracting the unique identifier and the calculated representation. Validation is performed by comparing the unique identifier to the calculated representation. If they match, the registration request is deemed valid; if not, it is rejected. This comparison ensures that the registration data has not been tampered with during transmission or entry. The method may also include generating the calculated representation using a cryptographic hash function or other one-way algorithm to enhance security. The system may further store the validated unique identifier in a secure database for future authentication purposes. This approach prevents unauthorized access and ensures that only legitimate users are registered in the system. The method is particularly useful in applications requiring high-security registration processes, such as financial services, healthcare, or government systems.
18. The method of claim 16 , wherein the registration request comprises a time value associated with an acceptance of the pre-usage agreement; and wherein the validating of the registration request comprises comparing, by the processing resource, the time value to an agreement creation date.
This invention relates to a system for validating user registration requests in a digital environment, particularly where pre-usage agreements must be accepted before access is granted. The problem addressed is ensuring that users comply with agreement terms before registration, with a focus on verifying the timing of agreement acceptance to prevent fraudulent or outdated registrations. The method involves receiving a registration request from a user, which includes a time value indicating when the user accepted a pre-usage agreement. The system then validates the registration by comparing this time value to the agreement's creation date. If the time value is later than the creation date, the registration is deemed valid. This ensures that the user accepted the agreement after it was created, reducing the risk of using outdated or invalid terms. The method may also involve generating a registration token upon successful validation, which can be used to authenticate the user in subsequent interactions. The system may further include a processing resource that performs the validation and a storage resource that stores the agreement creation date and other relevant data. The method may be part of a broader registration process that includes additional steps, such as verifying user identity or checking for existing accounts. The invention aims to enhance security and compliance in digital registration systems by enforcing temporal validation of agreement acceptance.
19. The method of claim 16 , wherein the pre-usage agreement is transmitted using a GAS frame comprising an ANQP element.
This invention relates to wireless communication systems, specifically methods for establishing secure connections between devices using pre-usage agreements. The problem addressed is the need for efficient and secure negotiation of connection parameters before a device joins a network, reducing latency and improving security. The method involves transmitting a pre-usage agreement between a first device and a second device. The pre-usage agreement includes connection parameters such as authentication credentials, encryption keys, or network policies. This agreement is exchanged before the second device fully associates with the network, allowing faster and more secure access. The pre-usage agreement is transmitted using a Generic Advertisement Service (GAS) frame, which is a standardized frame format in wireless communication protocols like Wi-Fi. The GAS frame includes an Access Network Query Protocol (ANQP) element, which is used to exchange network discovery and configuration information. By embedding the pre-usage agreement in this frame, the method leverages existing protocol structures to minimize additional overhead. The method ensures that the pre-usage agreement is securely transmitted and verified before the second device joins the network, reducing the risk of unauthorized access. This approach is particularly useful in environments where multiple devices need to connect quickly and securely, such as in IoT networks or public Wi-Fi hotspots. The use of GAS frames and ANQP elements ensures compatibility with existing wireless standards while enhancing security and efficiency.
Unknown
September 15, 2020
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.